Labsco
Cyreslab-AI logo

ExploitDB MCP Server

β˜… 27

from Cyreslab-AI

Query security exploits and vulnerabilities from the ExploitDB database.

πŸ”₯πŸ”₯πŸ”₯βœ“ VerifiedFreeAdvanced setup

ExploitDB MCP Server

A Model Context Protocol server that provides access to ExploitDB functionality, developed by Cyreslab.ai. This server enables AI assistants like Claude to query information about security exploits and vulnerabilities, enhancing cybersecurity research and threat intelligence capabilities.

GitHub Repository: https://github.com/Cyreslab-AI/exploitdb-mcp-server Contact: contact@cyreslab.ai

Features

  • Exploit Search: Search for exploits by keywords, CVE IDs, platforms, and more
  • Exploit Details: Get comprehensive information about specific exploits, including code
  • CVE Lookup: Find all exploits related to specific CVE IDs
  • Recent Exploits: Track newly added exploits
  • Statistics: Get insights into exploit distribution by platform, type, and year
  • Automatic Updates: Keep the database up-to-date with scheduled updates

Available Tools

The ExploitDB MCP server provides 18 comprehensive tools for querying and analyzing exploit data:

Core Search Tools

  1. search_exploits - General search with multiple filters
  2. get_exploit - Get detailed information about a specific exploit
  3. find_by_cve - Find exploits by CVE ID
  4. get_recent_exploits - Get recently added exploits
  5. get_statistics - Get database statistics

Advanced Search Tools

  1. search_by_platform - Search exploits for a specific platform with filters
  2. search_by_type - Search by exploit type (webapps, remote, local, dos, hardware)
  3. search_by_author - Find all exploits by a specific author
  4. search_by_date_range - Find exploits within a date range
  5. search_by_tags - Search by generated tags (sql injection, xss, etc.)

Analysis & Intelligence Tools

  1. get_platform_statistics - Get detailed statistics for a specific platform
  2. get_trending_exploits - Find recently added exploits (configurable time period)
  3. compare_exploits - Compare multiple exploits side-by-side
  4. get_exploit_timeline - Get chronological timeline of exploits

Utility Tools

  1. batch_get_exploits - Retrieve multiple exploits efficiently (up to 50)
  2. get_related_exploits - Find related exploits by platform, author, CVE, or tags
  3. validate_exploit_id - Check if an exploit ID exists
  4. export_search_results - Export search results in JSON or CSV format

Data Sources

This server uses data from the Exploit Database, maintained by Offensive Security. The data is either downloaded directly from the CSV file or cloned from the ExploitDB GitLab repository.

Data Processing

The server automatically handles various data quality issues:

  • Date handling: Uses date_published from the CSV, with fallbacks to date_added, date_updated, or a default date if all are missing
  • Missing fields: Provides sensible defaults for required fields (author, type, platform) when data is incomplete
  • CVE extraction: Automatically extracts CVE identifiers from exploit descriptions
  • Tag generation: Generates relevant tags based on exploit descriptions for improved searchability

The database typically contains:

  • 46,000+ exploits spanning from 1988 to present
  • 33,000+ verified exploits
  • Coverage across 60+ platforms (PHP, Windows, Linux, etc.)
  • 27,000+ web application exploits
  • Comprehensive metadata including authors, dates, platforms, and CVE references

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgements

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

Have feature suggestions or found a bug? Please open an issue on our GitHub repository or contact us directly at contact@cyreslab.ai.